MAR- 13-3006 13:34 FROM: 



8475760721 



TO:USPTO 



P. 5'30 



This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1. (currently amended) A method comprising the steps of: 

generating, by a first system device, a first encryption ke v associated with traffic 
encryption For group communications : 

forwarding the first encryption key from the first system device to a second system 
device other than a mobile station : 

storing the first encryption key at the second system device; 

generating, bv the second system device, a second encryption key associated with traffic 

encryption for group communications by combining the first encryption kev with a third 
encryption kev: and 

forwarding the second encryption kev to_a_third system device other than a mobile station 

and other than the first and second system_deyices , 

2. (currently amended) ¥h e- m e thod - of - c1aim - 1; furth e r comprising th e st e p s of: 
g e neruting - a -se cond -e ncryption - k e y - by - combining th e fir s t e ncryption k e y with a third encryption 
key; 

forwarding the second encryption k e y to a third sy s tem d e vic e . 
A method comprisingLthe_stepsjnf: 

receivings in a first system deyi<^jother_than_a_mobile_station. a first encryption kev 

generated in a second system device, wherein the first encryption kev is associated with traffic 
encryption forgrouo communications: 

storing the first encryption_key_at_the_ first system device: 

generating, by the_first_s n ystem_deyice > _a,second encryption key associated with traffic 

encryption for group communications by combining the first encryption key with a third 
encryption key; and 

forwarding the second encryption kev to a third system device other than a mobile station 

and other than the first and second system devices. 
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3. (currently amended) The method o f claim 1 claim -2, wherein the third system device is any of 
a base station, a base site, and a TETR A site controller, wherein the step of forwarding the 
second encryption key to a third system device is triggered by a mobile station residing at any of 
the base station, the base site, and the TETRA site controller when the first encryption key is 
generated, and wherein the mobile station is affiliated with a talkgroup associated with the First 
encryption key. 

4. (currently amended) The method o f_claim !■ claim 2 . wherein the third system device is any of 
a base station, a base site, and a TETRA site controller, wherein the step of forwarding the 
second encryption key to a third system device is triggered by a mobile station arriving at any of 
the base station, the base site, and the TETRA site controller, and wherein the mobile station is 
affiliated with a talkgroup associated with the first encryption key. 

5. (currently amended) The method o f claim 1 claim - 2 . wherein the third system device is any of 
a base station, a base site, and a TETRA site controller, wherein the step of forwarding the 
second encryption key to a third system device is triggered by a mobile station changing 
talkgroup affiliation while residing at any of the base station, the base site, and the TETRA site 
controller, and wherein the mobile station changes talkgroup affiliation to a talkgroup associated 
with the first encryption key. 

6. (currently amended) The method o f claim 1 olaim 2. wherein the third encryption key is 
associated with the third system device. 

7. (currently amended) The method o f claim 1 ■ olaira - 2 . wherein the first encryption key is a 
group cipher key, the second encryption key is a modified group cipher key and the third 
encryption key is a common cipher key. 

8. (currently amended) The method o f claim l- el - oim - 2 , further comprising the step of 
communicating over an air interface by encrypting messages with the second encryption key. 
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9. (currently amended) The method o f claim 1 claim - 2 . further comprising the step of updating 
the first encryption key when an encryption period associated with the third encryption key 
expires. 

10. (currently amended) The method of claim 1, wherein the second system device is included in 
a first zone of devices, the method further comprising th e steps of: Qtop of 

encrypting the first encryption key with an interke v that is associated wiih_the_first zone 
of devices and at least a second.zone of devices , yielding a first encrypted encryption key; 

forwarding the first encrypted encryption key to a fourth system device included in the 
second /.one of devices, wherein the fourth system device is other than a mobile station and other 
than the first second and third system devices : 

decrypting, by the fourth system device, the first encrypted encryption key into the first 
encryption key. 

11. (currently amended) The method of claim 10, further comprising the steps of; 

generatin g, by the fourth system device, the second - a - s e oond encryption key by 
combining the first encryption key wit h the third- a-thifd encryption key: and 

forwarding the second encryption key to a fifth system devic e included in the second 
zone_of_deyices that is other than a mobile station and other than the first, second, third and 
fourth system devices . 

12. (currently amended) The method of claim 1 1 , wherein the second encryption key is 
encrypted with an intrake v associated only with the secondzoneof devices prior to being 
forwarded to the fifth system device. 

13. (original) The method of claim 11, wherein the third encryption key is associated with the 
fifth system device. 

14. (currently amended) The method of claim 1 1 ♦ wherein the first encryption key is a group 
cipher key, the second encryption key is a modified group cipher key and t he third encryption 
key is a common cipher key. 
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15. (original) The method of claim 1 , further comprising the steps of: 

encrypting the first encryption, key with a key associated with a mobile station, yielding 
an encrypted mobile encryption key; 

forwarding the encrypted mobile encryption key to the mobile station. 

16. (original) The method of claim 15, further comprising the steps of: 

decrypting, by the mobile station, the encrypted mobile encryption key with the key 
associated with the mobile station, yielding the first encryption key; 

combining the first encryption key with a predetermined encryption key, yielding an air 
interface key; 

communicating over an air interface by encrypting messages with the air interface key. 

17- (original) The method of claim 16, wherein the predetermined encryption key is a common 
cipher key. 

18. (currently amended) The method of claim 1, wherein the, second device is included in a first 
zone of devices, the method f urther comprising the step of encrypting the first encryption key 
with an interkey associated with the first zone of devicesjand at least a second zone of devices 
prior to the forwarding step , wherein the encrypted first encryption key is stored at the second 
s ystem device . 

19. (currently amended) The method o f claim 18 olaim 1 , further comprising the step of 
acknowledging receipt of the first encryption key. 

20. (original) The method of claim 19, wherein the step of acknowledging comprising 
decrypting the first encryption key, and when the first encryption key is decrypted properly, 
generating an acknowledgment to be forwarded via an air traffic router to the first system device. 

21. (original) The method of claim 1, wherein the second system device contains a home 
location register associated with the first encryption key. 



5 



PAGE 8/30 ' RCVD AT 311312006 1:27:15 PH [Eastern Standard Time] ' SVfcUSPTQ-EFXRF-6146* DNIS:2738300 ' CSID:8475760721 ' DURATION (mm-ss):07-02 



9475760721 TO:USPTO P.9'30 

MflR-13-2006 13:35 FROM: 8475760721 



22. (original) The method of claim 1, further comprising the step of updating the first encryption 
key when an encryption period associated with the first encryption key expires. 

23. (withdrawn) A method comprising the steps of: 
generating, by a first system device, key material; 

forwarding the key material from the first system device to a second system device; 
determining whether a mobile station, for which the key material is directed, is active on the 
system; 

when the mobile station is active, forwarding the key material to a base station where the mobile 
station is active; 

forwarding, by the base station, the key material to the mobile station. 

24. (withdrawn) The method of claim 23, further comprising the step of encrypting the key 
material prior to any forwarding step. 

25. (withdrawn) The method of claim 23, wherein any oF a base site and a TETRA site 
controller takes the place of the base station. 

26. (withdrawn) The method of claim 23, wherein the key material is forwarded from the 
first system device to the second system device via an air traffic router. 

27. (withdrawn) The method of claim 23, wherein the second system device is a zone 
controller. 

28. (withdrawn) The method of claim 23, wherein the second system device is at least one of 
a home location register and a visited location register. 

29. (withdrawn) The method of claim 23, wherein the key material comprises a group cipher 
key. 

30. (withdrawn) The method of claim 23, wherein the key material comprises a static cipher 

key. 
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31. (withdrawn) The method of claim 23, wherein the key associated with the base station 
comprises an intrakey* 

32 f (withdrawn) The method of claim 23, further comprising the step of encrypting the key 
material with an interkey prior to forwarding the key material from the first system device to the 
second system device, 

33. (withdrawn) The method of claim 23, further comprising the step of acknowledging 
receipt of the key material. 

34. (withdrawn) The method of claim 33, wherein the step of acknowledging comprising 
decrypting the key material* and when the key material is decrypted properly, generating an 
acknowledgment to be forwarded via an air traffic router to the first system device. 

35* (withdrawn) The method of claim 23, wherein the second system device contains a home 
location register associated with the mobile station. 

36. (withdrawn) The method of claim 23, further comprising the step of updating the key 
material when an encryption period associated with the key material expires. 

37. (withdrawn) The method of claim 23, further comprising the steps of: 
generating, by the mobile station, an first encryption key from the key material; 
combining the first encryption key with a second encryption key, yielding an air interface key; 
communicating over an air interface by encrypting messages with the air interface key. 

38. (withdrawn) The method of claim 37, wherein the first encryption key is a group cipher 
key. 

39. (withdrawn) The method of claim 37, wherein the first encryption key is a static cipher 
key. 
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40. (withdrawn) The method of claim 37, wherein the second encryption key is a common 
cipher key. 

41. (withdrawn) The method of claim 37, further comprising the step of updating the air 
interface key when an encryption period associated with the second encryption key expires. 

42. (withdrawn) The method of claim 23, wherein the step of forwarding the key material 
from the first system device to a second system device comprises the steps of; 
forwarding the key material from the first system device to a third system device; 
forwarding the key material from the third system device to the second system device. 

43. (withdrawn) The method of claim 42, further comprising the steps of: 

encrypting the first encryption key with an interkey prior to forwarding the key material from the 
first system device; 

decrypting* by the third system device, the key material with the interkey. 

44. (withdrawn) A method comprising the steps of: 
generating an encryption key at a first system device; 

encrypting the encryption key with a first intrakey associated with a second system device, 
yielding a first encrypted encryption key; 

forwarding the first encrypted encryption key to the second system device. 

45. (withdrawn) The method of claim 44, further comprising the steps of: 

encrypting the encryption key with an intrakey associated with a third system device, yielding a 
second encrypted enciyption key; 

forwarding the second encrypted encryption key to the third system device. 

46. (withdrawn) The method of claim 44, wherein the step of forwarding comprises 
forwarding the first encrypted encryption key transparently through at least a fourth system 
device prior to the second system device and storing the first encrypted encryption key at the 
fourth system device. 

s 
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47. (withdrawn) The method of claim 46, wherein the fourth system device is a zone 
manager, 

48. (withdrawn) The method of claim 44, wherein the encryption key is a static cipher key 
that is used when at least one of dynamic air interface encryption and authentication is 
inoperable. 

49. (withdrawn) The method of claim 44, wherein the first system device is a key 
management facility. 

50. (withdrawn) The method of claim 44, further comprising the step of forwarding an 
acknowledgment of receipt of the encryption &9 to the first system device via at least a fifth 
system device. 

51. (withdrawn) The meihod of claim 50, wherein the fifth system device is an air traffic 
router. 

52. (withdrawn) A method comprising the steps of: 

generating an encryption key at a first system device in a communication system; 

forwarding the encryption key to a second system device that serve, as a home location register 

for a mobile station; 

forwarding the encryption key to the mobile station, 

53. (withdrawn) The method of claim 52, further comprising the step of determining whether 
the mobile station is active in the communication system prior to forwarding the encryption key 
to the mobile station. 

54. (withdrawn) The method of claim 52, further comprising the step of determining whether 
the mobile station is active in the communication system prior to forwarding the encryption key 
to the mobile station, and when the mobile station is not active, inhibiting forwarding of the 
encryption key to the mobile station. 
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55. (withdrawn) The method of claim 52, wherein the encryption key is encrypted prior to 
being forwarded. 

56. (withdrawn) The method of claim 52, further comprising the step of sending an 
acknowledgment of successful receipt of the encryption key to an air traffic router via at least a 
zone controller 

57. (withdrawn) A method comprising the steps of; 

storing, at a home location register, key material related to mobile stations associated with the 
home location register; 

storing, at a first visited location register associated with a first site in a first zone, key material 
related to a first mobile station of the mobile stations associated with the home location register; 
when the first mobile station roams to a second site in a second zone associated with a second 
visited location register, encrypting key material related to the first mobile station with an 
interkey, yielding encrypted key material; 

forwarding the encrypted key material to the second visited location register. 

58. (withdrawn) The method of claim 57, further comprising the steps of encrypting, by the 
second visited location register, die key material with an intrakey, yielding intrakey-encrypted 
key material, and forwarding the intrakey-encrypted key material to any of a base station and a 
TETRA site controller at the second site. 



o 



PAGE 13/30 1 RCVD AT 3/13/2006 1:27:15 PM [Eastern Standard Time] * SVR:USPTOff XRF-fi/46 1 DNIS:2?38300 * CSID:S475760721 * DURATION (mm-ss):07-02 



MftR- 13-2086 13=36 FROM: 



8475760721 



TO:USPTO 



P. 14'30 



59. (withdrawn) The method of claim 57, further comprising the step of, when the mobile 
station is active at any of a base station, a base site* and a TETRA site controller associated with 
the home location register, encrypting, by the first visited location register, the key material with 
an intrakey, yielding intrakey-encrypted key material, and forwarding the intrakey-encrypted key 
material to any of the base station, the base site, and the TETRA site controller associated with 
the home location register. 

60. (withdrawn) The method of claim 57, wherein die key material related to mobile stations 
registered at the first home location register is stored at least in part in encrypted form at the 
home location register. 

61 . (withdrawn) The method of claim 36 T wherein the key material is stored at least in part 
unencrypted at the second visited locution register, 

62. (withdrawn) A method comprising the steps of: 

receiving, from a mobile station at a first site in a communication system, an encrypted message; 
attempting to decrypt the encrypted message; 

when the attempt to decrypt has at least partially failed* requesting, from a system device in the 
communication system, an encryption key associated with the mobile station; 
receiving the encryption key; 

decrypting the encrypted message with the received encryption key. 

63. (withdrawn) The method of claim 62» further comprising the step of exchanging, with 
the mobile station, messages encrypted with the encryption key. 

64. (withdrawn) The method of claim 62, further comprising the step of decrypting at least 
an identification of the mobile station in order to identify the requested encryption key. 

65. (withdrawn) The method of claim 64, wherein the identification of the mobile station is 
decrypted utilizing a common cipher key. 
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66. (withdrawn) The method of claim 62, further comprising the step of forwarding an 
acknowledgment of receipt of the encrypted message to the mobile station. 

67. (withdrawn) The method of claim 62, wherein the encryption key is encrypted by an 
intrakey prior to the receiving step. 

68. (withdrawn) The method of claim 62, further comprising the steps of: 
forwarding the encryption key, encrypted by an interkey, from a system device at a first zone 
where the encryption key is stored to a system device at a second zone including the first site; 
decrypting, by the system device at the second zone, the encrypted encryption key; 
encrypting, by the system device at the second zone, the encryption key with an intrakey. 
yielding an intrakey-encrypted key; 

forwarding the intrakey-encrypted key to a system device at the first site. 

69. (withdrawn) The method of claim 62, wherein the encryption key is a derived cipher 
key. 

70. (withdrawn) The method of claim 62, farther comprising me step of combining a first 
encryption key with a third encryption key, yielding the encryption key. 

71 . (withdrawn) The method of claim 70, wherein the encryption key is a group cipher key. 

72. (withdrawn) The method of claim 62, wherein the system device at the first site is any of 
a base station, a base site, and a TETRA site controller. 

73. (withdrawn) The method of claim 62, further comprising the steps of: 
determining whether the encryption key associated with the mobile station is stored at a zone 
including die first site; 

when the encryption key associated with the mobile station is not stored at a zone including the 
first site, determining which zone has the encryption key, yielding a target zone; 
sending a request to the target zone for the encryption key associated with the mobile station; 
receiving, from the target zone, the encryption key associated with the mobile station. 
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74. (withdrawn) The method of claim 62, wherein the encryption key is stored at the system 
device at the first site until the encryption key is replaced by another encryption key, 

75. (withdrawn) The method of claim 62» wherein the encryption key is deleted from the 
system device at the first site after the encryption key has not been updated for a period of time 
greater than an expected average authentication rate in the communication system. 

76. (withdrawn) The method of claim 62, wherein the encryption key is deleted from the 
system device at the first site when system device at the first site is instructed to delete the 
encryption key. 

77. (withdrawn) The method of claim 62, wherein the encryption key is deleted after a 
timeout from the system device at the first site when system device at the first site is instructed to 
delete the encryption key. 

78. (withdrawn) The method of claim 62, wherein the encryption key is deleted from the 
system device at the first site after the system device at the first site is informed that the mobile 
station has left the first site. 

79. (withdrawn) The method of claim. 62, wherein the encryption key is deleted after a . y 
timeout from the system device at the first site after the system device at the first site is informed 
that the mobile station has left the first site. 

80. (withdrawn) A method comprising the steps of: 

when a mobile station is located at a site in a communication system, storing at the site at least 
one encryption key associated with a mobile station; 
determining when the mobile station leaves the site; 
setting a persistence timer; 

when the persistence timer expires, deleting the at least one encryption key associated with a 
mobile station. 
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81. (withdrawn) The method of claim 80, further comprising the steps of replacing the at 
least one encryption key with at least another encryption key and resetting the persistence timer. 

82. (withdrawn) The method of claim 80, wherein the persistence timer is set to a persistence 
time that is less than an expected average authentication rate in the communication system. 

83. (withdrawn) The method of claim 80, wherein the persistence timeT is set to a persistence 
time that is based on an expected average authentication rate in the communication system. 

84. (withdrawn) The method of claim 83, wherein the expected average authentication rate is 
based on an average number of times a mobile station authenticates within a time period. 

85. (withdrawn) The method of claim 80, wherein the at least one encryption key is stored at 
the site until the at least one encryption key is replaced by at least another encryption key. 

86. (withdrawn) The method of claim 80, wherein the at least one encryption key is deleted 
from the site when the at least one encryption key has not been updated for a period of time 
greater than an expected average authentication rate in the communication system. 

87. (withdrawn) The method of claim 80, wherein the at least one encryption key is deleted 
from the site when a system device at the site is instructed to delete the at least one encryption 
key. 

88. (withdrawn) The method of claim 80, wherein the at least one encryption key is deleted 
after a timeout from the site when a system device at the site is instructed to delete the at least 
one encryption key. 

89. (withdrawn) The method of claim 80, wherein the step of determining when the mobile 
station leaves the site is performed by a zone controller. 
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90. (withdrawn) A method comprising the steps of: 
sending, by a mobile station at a first site in a communication system, a message indicating intent 
to roam to a second site; 

forwarding, to a system device at the second site, an encryption key associated with the mobile 
station; 

exchanging, between the system device at the second site and the mobile station, messages 
encrypted with the encryption key. 

9L (withdrawn) The method of claim 90. further comprising the step of determining a delay 
period. 

92. (withdrawn) The method of claim 91, further comprising the step of, after the delay 
period, forwarding a message to the mobile station indicating approval to register at the second 
site. 

93. (withdrawn) The method of claim 91, wherein the delay period is based on a relationship 
between the first site and the second site. 

94. (withdrawn) The method of claim 91, wherein the delay period is short when the first 
site and the second site are from one zone in the communication system. 0 

95. (withdrawn) The method of claim 91, wherein the delay period is long when the first site 
and the second site are from different zones in the communication system. 

96. (withdrawn) The method of claim 91, wherein the delay period is determined by a zone 
controller for the first site. 

97. (withdrawn) The method of claim 90, wherein the encryption key is encrypted by an 
intrakey prior to the forwarding step. 
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98. (withdrawn) The method of claim 90, wherein the step of forwarding comprises the steps 

of: 

encrypting the encryption key with an interkey, yielding an intergroup-encrypted key; 
forwarding the intergroup-encrypted key from a system device at a first zone including the first 
site to a system device at a second zone including the second site; 

decrypting, by the system device at the second zone, the intergroup-encrypted key into the 
encryption key; 

encrypting, by the system device at the second zone, the encryption key with an intragroup 
encryption key, yielding an intragroup-encrypted key; 

forwarding the mtragroup-encrypted key to the system device at the second site. 

99. (withdrawn) The method of claim 90, wherein the encryption key is a derived cipher 
key. 

100* (withdrawn) The method of claim 90, further comprising the step of combining a first 
encryption key with a third encryption key, yielding the encryption key. 

101. (withdrawn) The method of claim 100, wherein the encryption key is a modified group 
cipher key, 

102. (withdrawn) The method of claim 90, wherein the system device at the second site is 
any of a base station, a base site, and a TETRA site controller. 

103. (withdrawn) The method of claim 90, wherein the encryption key is stored at the 
system device at the second site until the encryption key is replaced by another encryption key. 

104. (withdrawn) The method of claim 90, wherein the encryption key is deleted from the 
system device at the second site when the encryption key has not been updated for a period of 
time greater than an expected average authentication rate in the communication system after the 
mobile station leaves the second site. 
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105. (withdrawn) The method of claim 90. wherein the encryption key is deleted from the 
system device at the second site when system device at the second site is instructed to delete the 
encryption key. 

106. (withdrawn) The method of claim 90, wherein the encryption key is deleted after a 
timeout from the system device at the second site when system device at the second site is 
instructed to delete the encryption key. 

107. (withdrawn) The method of claim 90, wherein the encryption key is deleted from the 
system device at the second site after the system device at the second site is informed that the 
mobile station has left the second site. 

108. (withdrawn) The method of claim 90, wherein the encryption key is deleted after a 
timeout from the system device at the second site after the system device at the second site is 
informed that the mobile station has left the second site. 

109. (withdrawn) A method comprising the steps of: 

requesting* by a mobile station, to communicate within a communication system in an encrypted 
manner; 

determining, by a system device in the communication system, a delay period; 

after the delay period has expired, forwarding a message to the mobile station indicating 

approval to operate. 

110. (withdrawn) The method of claim 109, wherein the delay period is determined based on 
a relationship between a location of the mobile station and a storage location, within the 
communication system, of an encryption key associated with the mobile station. 

111. (withdrawn) The method of claim 109, wherein the delay period is short when the 
location of the mobile station and a location of the encryption key arc in one zone in the 
communication system* 
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1 12. (withdrawn) The method of claim 109, wherein the delay period is short when the 
location of the mobile station and an expected future location of the mobile station are in one 
zone in the communication system. 

1 13. (withdrawn) The method of claim 109, wherein the delay period is long when the 
location of the mobile station and a destination of the encryption key are in different zones in the 
communication system. 

1 14. (withdrawn) The method of claim 109, wherein the delay period i$ long when the 
location of the mobile station and an expected future location of the mobile station are in 
different zones in the communication system. 

1 15. (withdrawn) The method of claim 109 ? wherein the delay period is determined by a 
zone controller. 

1 16. (withdrawn) A method comprising the steps of; 
dividing a plurality of system devices into a plurality of pools; 

utilizing an intrakey to encrypt messages passed between system devices in the same pool; 
utilizing an interkey to encrypt messages passed between system devices of different pools. 

117. (withdrawn) The method of claim 116, wherein each of the plurality of pools comprises 
a mutually exclusive subset of the plurality of system devices. 

118. (withdrawn) The method of claim 1 16, wherein the messages comprise at least one 
encryption key. 

119. (withdrawn) The method of claim 116, wherein the messages comprise session 
authentication information. 

120. (withdrawn) The method of claim 116, wherein each different pool utilizes a different 
intrakey, 
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121. (withdrawn) The method of claim 116, wherein only one system device from each pool 
utilizes the intcrkcy. 

122. (withdrawn) The method of claim 116, wherein the plurality of system devices are part 
of a communication system infrastructure that provides encrypted communications. 

123. (withdrawn) The method of claim 1 16, wherein at least one of the plurality of system 
devices has its own protection key, which protection key is utilized to encrypt and decrypt any of 
the intrakey and the intcrkcy for transport to any of the at least one of the plurality of system 
devices. 

124. (withdrawn) The method of claim 116, wherein each pool of the plurality of pools is 
comprised of one or more system devices that reside in a single zone of a plurality of zones in a 
communication system. 

125. (withdrawn) The method of claim 124, wherein the one or more system devices that 
reside in a single zone are comprised of at least one of a base station, base site, TETRA site 
controller, and a zone controller. 

126. (withdrawn) The method of claim 124, wherein only a zone controller within each of 
the plurality of zones stores the interkey. 

127. (withdrawn) The method of claim 1 16, wherein the interkey is utilized to encrypt 
messages passed between a system device and a key management facility. 

128. (withdrawn) The method of claim 116. wherein a message is encrypted by one of an 
intrakey and an interkey based on a system device to which the message is forwarded. 
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129. (withdrawn) A method comprising the steps of: 
storing a protection key for each of a plurality of system devices; 

when transporting key material to a system device of the plurality of system devices, encrypting 
the key material with a protection key associated with the system device, 

130. (withdrawn) The method of claim 129, wherein the key material is a key encryption 
key. 

131. (withdrawn) The method of claim 129, wherein each of the plurality of system devices 
has its own unique protection key. 

\ 

132. (withdrawn) A method comprising the steps of: 
establish an expected lifetime for an encryption key; 

determining a number of storage locations for each type of system device within a 
communication system; 

based on the expected lifetime for the encryption key and the number of storage locations, 
assigning the type of system device at which to store the encryption key; 
storing the encryption key at a system device of the assigned type. 

1 33. (withdrawn) The method of claim 1 32, wherein the step of determining comprises 
determining a number of storage locations and accessibility for each type of system device 
within a communication system, and the step of assigning comprises, based on the expected 
lifetime for the encryption key and the number of storage locations and accessibility, assigning 
the type of system device at which to store the encryption key. 

134. (withdrawn) The method of claim 132, further comprising the step of replacing the 
encryption key when its expected lifetime expires. 

135. (withdrawn) The method of claim 132, wherein the encryption key is a derived cipher 
key that is stored at any of a base station, a base site, and a TETRA site controller. 
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136. (withdrawn) The method of claim 132, wherein the encryption key is a common cipher 
key that is stored at any of a base station, a base site, and a TETRA site controller. 

137. (withdrawn) The method of claim 132, wherein the encryption key is a modified group 
cipher key that is stored at any of a base station, a base site, and a TETRA site controller, 

1 38. (withdrawn) The method of claim J 32, wherein the encryption key is a group cipher 
key that is stored at at least one of a home location register and a visited location register. 

1 39. (withdrawn) A method comprising the steps of: 
generating an encryption key for use in a first geographical area; 

forwarding the encryption key to one or more base stations covering the first geographical area; 
transmitting, by at least one of the one or more base stations, the encryption key to a mobile 
station registered at the at least one of the one or more base stations. 

140. (withdrawn) Hie method of claim 139, wherein any combination of one or more base 
sites and one or more TETRA site controllers takes the place of the one or more base stations. 

141 . (withdrawn) The method of claim 139, wherein the encryption key is encrypted with an 
interkey prior to the forwarding step. 

142. (withdrawn) Hie method of claim 141, further comprising the steps of decrypting the 
encrypted encryption key, and encrypting the encryption key with an intrakey prior to the 
forwarding step. 

143. (withdrawn) The method of claim 139, wherein the encryption key is encrypted prior to 
the transmitting step. 

144. (withdrawn) The method of claim 143, wherein the encryption key is encrypted with a 
derived cipher key prior to the transmitting step. 
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145. (withdrawn) The method of claim 139, further comprising the step of sending an 
acknowledgment of receipt of the encryption key to a key management facility. 

146. (withdrawn) The method of claim 145, further comprising the step of checking 
currency of the encryption key and holding off the step of sending until the encryption key is 
current. 

147. (withdrawn) The method of claim 145, wherein the step of sending the 
acknowledgment comprises sending the acknowledgment to an air traffic router via at least a 
/.one controller. 

148. (withdrawn) The method of claim 139, further comprising the steps of generating a 
second encryption key for use in a second geographical area adjacent to the first geographical 
area, and forwarding the second encryption key to one or more base stations covering the second 
geographical area. 

149. (withdrawn) The method of claim 148, further comprising the step of forwarding the 
second encryption key to at least one of the one or more base stations covering the first 
geographical area. 

1 50. (withdrawn) The method of claim 139, further comprising the step of tracking, by the 
base station, currency of the encryption key. 

151. (withdrawn) The method of claim 139, wherein the encryption key is a common cipher 
key. 

1 52. (withdrawn) The method of claim 139, wherein each base station stores an encryption 
key associated with each geographical area adjacent to the geographical area covered by the base 
station. 
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153. (withdrawn) A method comprising the steps of: 

generating a plurality of encryption keys and associating each encryption key with one 
geographical area of a plurality of geographical areas; 

forwarding each encryption key to one or more base stations in the geographical area associated 
with the encryption key; 

determining at least one of the plurality of geographical areas that is adjacent to a first 
geographical area, yielding one or more adjacent geographical areas; 

forwarding an encryption key for at least one of the one or more adjacent geographical areas to at 
least one base station covering the first geographical area. 

154. (withdrawn) The method of claim 153, wherein any combination of one or more base 
sites and one or more TETRA site controllers takes the place of the one or more base stations. 

155. (withdrawn) The method of claim 153, further comprising the step of transmitting, by at 
least one of the one or more base stations, the encryption key to a mobile station registered at the 
at least one of the one or more base stations. 

156. (withdrawn) The method of claim 155, wherein each encryption key is encrypted with 
at least one of an interkey and an interkey prior to the forwarding step. 

157. (withdrawn) The method of claim 156, further comprising the Steps of decrypting the 
encrypted encryption key* and encrypting the encryption key with an intrakey prior to the 
forwarding step. 

158. (withdrawn) The method of claim 153, wherein each encryption key is encrypted prior 
to the transmitting step. 

159. (withdrawn) The method of claim .158, wherein each encryption key is encrypted with a 
derived cipher key prior to the transmitting step. 

160. (withdrawn) The method of claim 153, further comprising the step of sending an 
acknowledgment of receipt of the encryption key to a key management facility. 
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161. (withdrawn) The method of claim 160, wherein the step of sending the 
acknowledgment comprises sending the acknowledgment to an air traffic router via at least a 
stone controller. 

162. (withdrawn) The method of claim 153, further comprising the step of tracking, by a 
base station, currency of the encryption key. 

1 63. (withdrawn) The method of claim 153, wherein the encryption key is a common cipher 

key, 

164. (withdrawn) The method of claim 153 4 wherein each base station stores an encryption 
key associated with each geographical area adjacent to the geographical area covered by the base 
station. 
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